Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 17, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
201251	8.8	重要 Network	Drupal Debian	-	Drupal の User モジュールにおける権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2016-6211	2016-09-12 16:15	2016-06-15	Show	GitHub Exploit DB Packet Storm

201252	9.8	緊急 Network	フォーティネット	-	複数の Fortinet FortiSwitch FSW モデルにおける認証を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2016-4573	2016-09-12 14:45	2016-07-11	Show	GitHub Exploit DB Packet Storm

201253	4.5	警告 Local	ヒューレット・パッカード・エンタープライズ	-	HPE XP7 Command View Advanced Edition Suite におけるアクセス制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2016-4381	2016-09-12 14:15	2016-09-1	Show	GitHub Exploit DB Packet Storm

201254	9.8	緊急 Network	ヒューレット・パッカード・エンタープライズ	-	複数の HPE Integrated Lights-Out 製品のファームウェアにおける重要な情報を取得される脆弱性	CWE-noinfo 情報不足	CVE-2016-4375	2016-09-12 14:15	2016-08-12	Show	GitHub Exploit DB Packet Storm

201255	7.5	重要 Network	Huawei	-	複数の Huawei サーバのソフトウェアにおける暗号化されたデータを解読される脆弱性	CWE-200 CWE-310	CVE-2016-6838	2016-09-12 13:57	2016-08-17	Show	GitHub Exploit DB Packet Storm

201256	7.5	重要 Network	GNU Project openSUSE project Canonical	-	libidn の lib/idna.c の idna_to_ascii_4i 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-Other その他	CVE-2016-6261	2016-09-12 11:45	2016-07-20	Show	GitHub Exploit DB Packet Storm

201257	7.5	重要 Network	GNU Project openSUSE project Canonical	-	GNU libidn の idn における重要なメモリ情報を取得される脆弱性	CWE-Other その他	CVE-2015-8948	2016-09-12 11:45	2015-08-10	Show	GitHub Exploit DB Packet Storm

201258	7.5	重要 Network	GNU Project openSUSE project Canonical	-	libidn の idn における重要なメモリ情報を取得される脆弱性	CWE-Other その他	CVE-2016-6262	2016-09-12 11:45	2016-07-20	Show	GitHub Exploit DB Packet Storm

201259	7.5	重要 Network	GNU Project openSUSE project Canonical	-	libidn の lib/nfkc.c の stringprep_utf8_nfkc_normalize 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-Other その他	CVE-2016-6263	2016-09-12 11:45	2016-07-20	Show	GitHub Exploit DB Packet Storm

201260	5.4	警告 Network		-	HPE Operations Manager の AdminUI におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2016-4380	2016-09-12 11:11	2016-08-30	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 17, 2026, 4:15 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
346441	-	arc	arc	arc 5.21j and earlier create temporary files with world-readable permissions, which allows local users to read sensitive information from files created by (1) arc (arc.c) or (2) marc (marc.c).	NVD-CWE-Other	CVE-2005-2945	2016-10-18 12:31	2005-09-17	Show	GitHub Exploit DB Packet Storm

346442	-	-	-	KillProcess 2.20 and earlier allows local users to bypass kill list restrictions by launching multiple processes at the same time, which are not all killed by KillProcess.	NVD-CWE-Other	CVE-2005-2948	2016-10-18 12:31	2005-09-17	Show	GitHub Exploit DB Packet Storm

346443	-	mark_d._roth	pam_per_user	pam_per_user before 0.4 does not verify if the user name changes between authentication attempts and uses the same subrequest handle, which allows remote attackers or local users to login as other us…	NVD-CWE-Other	CVE-2005-2949	2016-10-18 12:31	2005-09-17	Show	GitHub Exploit DB Packet Storm

346444	-	miva	miva_merchant	Cross-site scripting (XSS) vulnerability in merchant.mvc in MIVA Merchant 5 allows remote attackers to inject arbitrary web script or HTML via the Customer_Login parameter.	NVD-CWE-Other	CVE-2005-2953	2016-10-18 12:31	2005-09-17	Show	GitHub Exploit DB Packet Storm

346445	-	adaptive_technology_resource_centre	atutor	config.inc.php in ATutor 1.5.1, and possibly earlier versions, uses an incomplete blacklist to check for dangerous file extensions, which allows authenticated administrators or educators to execute a…	NVD-CWE-Other	CVE-2005-2955	2016-10-18 12:31	2005-09-17	Show	GitHub Exploit DB Packet Storm

346446	-	adaptive_technology_resource_centre	atutor	ATutor 1.5.1, and possibly earlier versions, stores temporary chat logs under the web document root with insufficient access control and predictable filenames, which allows remote attackers to obtain…	NVD-CWE-Other	CVE-2005-2956	2016-10-18 12:31	2005-09-17	Show	GitHub Exploit DB Packet Storm

346447	-	avira	desktop	Stack-based buffer overflow in AVIRA Desktop for Windows 1.00.00.68 with AVPACK32.DLL 6.31.0.3, when archive scanning is enabled, allows remote attackers to execute arbitrary code via a long filename…	NVD-CWE-Other	CVE-2005-2957	2016-10-18 12:31	2005-09-17	Show	GitHub Exploit DB Packet Storm

346448	-	compaq	compaqhttpserver	Cross-site scripting (XSS) vulnerability in CompaqHTTPServer 2.1 allows remote attackers to inject arbitrary web script or HTML via the URL, which is not properly quoted in the resulting 404 error pa…	NVD-CWE-Other	CVE-2005-2982	2016-10-18 12:31	2005-09-20	Show	GitHub Exploit DB Packet Storm

346449	-	oracle	reports	SQL injection vulnerability in Oracle Reports that use Lexical References allows remote attackers to execute arbitrary SQL commands via the values in the parameter form that appears when the paramfor…	CWE-89 SQL Injection	CVE-2005-2983	2016-10-18 12:31	2005-09-20	Show	GitHub Exploit DB Packet Storm

346450	-	symantec	norton_antivirus	Symantec AntiVirus Corporate Edition 9.0.1.x and 9.0.4.x, and possibly other versions, when obtaining updates from an internal LiveUpdate server, stores sensitive information in cleartext in the Log.…	NVD-CWE-Other	CVE-2005-2766	2016-10-18 12:30	2005-09-2	Show	GitHub Exploit DB Packet Storm